Red Hat Security Advisory: firefox security update
🔗 CVE IDs covered (38)
📋 Description
CVE-2026-2447 — libvpx: Heap buffer overflow in libvpx CVE-2026-2757 — firefox: thunderbird: Incorrect boundary conditions in the WebRTC: Audio/Video component CVE-2026-2758 — firefox: thunderbird: Use-after-free in the JavaScript: GC component CVE-2026-2759 — firefox: thunderbird: Incorrect boundary conditions in the Graphics: ImageLib component CVE-2026-2760 — firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Graphics: WebRender component CVE-2026-2761 — firefox: thunderbird: Sandbox escape in the Graphics: WebRender component CVE-2026-2762 — firefox: thunderbird: Integer overflow in the JavaScript: Standard Library component CVE-2026-2763 — firefox: thunderbird: Use-after-free in the JavaScript Engine component CVE-2026-2764 — firefox: thunderbird: JIT miscompilation, use-after-free in the JavaScript Engine: JIT component CVE-2026-2765 — firefox: thunderbird: Use-after-free in the JavaScript Engine component CVE-2026-2766 — firefox: thunderbird: Use-after-free in the JavaScript Engine: JIT component CVE-2026-2767 — firefox: thunderbird: Use-after-free in the JavaScript: WebAssembly component CVE-2026-2768 — firefox: thunderbird: Sandbox escape in the Storage: IndexedDB component CVE-2026-2769 — firefox: thunderbird: Use-after-free in the Storage: IndexedDB component CVE-2026-2770 — firefox: thunderbird: Use-after-free in the DOM: Bindings (WebIDL) component CVE-2026-2771 — firefox: thunderbird: Undefined behavior in the DOM: Core & HTML component CVE-2026-2772 — firefox: thunderbird: Use-after-free in the Audio/Video: Playback component CVE-2026-2773 — firefox: thunderbird: Incorrect boundary conditions in the Web Audio component CVE-2026-2774 — firefox: thunderbird: Integer overflow in the Audio/Video component CVE-2026-2775 — firefox: thunderbird: Mitigation bypass in the DOM: HTML Parser component CVE-2026-2776 — firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software CVE-2026-2777 — firefox: thunderbird: Privilege escalation in the Messaging System component CVE-2026-2778 — firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the DOM: Core & HTML component CVE-2026-2779 — firefox: thunderbird: Incorrect boundary conditions in the Networking: JAR component CVE-2026-2780 — firefox: thunderbird: Privilege escalation in the Netmonitor component CVE-2026-2781 — firefox: thunderbird: Integer overflow in the Libraries component in NSS CVE-2026-2782 — firefox: thunderbird: Privilege escalation in the Netmonitor component CVE-2026-2783 — firefox: thunderbird: Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component CVE-2026-2784 — firefox: thunderbird: Mitigation bypass in the DOM: Security component CVE-2026-2785 — firefox: thunderbird: Invalid pointer in the JavaScript Engine component CVE-2026-2786 — firefox: thunderbird: Use-after-free in the JavaScript Engine component CVE-2026-2787 — firefox: thunderbird: Use-after-free in the DOM: Window and Location component CVE-2026-2788 — firefox: thunderbird: Incorrect boundary conditions in the Audio/Video: GMP component CVE-2026-2789 — firefox: thunderbird: Use-after-free in the Graphics: ImageLib component CVE-2026-2790 — firefox: thunderbird: Same-origin policy bypass in the Networking: JAR component CVE-2026-2791 — firefox: thunderbird: Mitigation bypass in the Networking: Cache component CVE-2026-2792 — firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148 CVE-2026-2793 — firefox: thunderbird: Memory safety bugs fixed in Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird ESR 140.8, Firefox 148 and Thunderbird 148
🔗 References (41)
- selfhttps://access.redhat.com/errata/RHSA-2026:3984
- externalhttps://access.redhat.com/security/updates/classification/#important
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2440219
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442284
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442287
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442288
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442290
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442291
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442292
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442294
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442295
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442297
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442298
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442300
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442302
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442304
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442307
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442308
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442309
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442312
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442313
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442314
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442316
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442318
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442319
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442320
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442322
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442324
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442325
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442326
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442327
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442328
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442329
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442331
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442333
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442334
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442335
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442337
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442342
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=2442343
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_3984.json